In Veritas NetBackup 8.0 and earlier and NetBackup Appliance 3.0 and earlier, there is unauthenticated, arbitrary remote command execution using the 'bprd' process.
References
Link | Resource |
---|---|
https://www.veritas.com/content/support/en_US/security/VTS17-004.html#Issue1 | Vendor Advisory |
http://www.securityfocus.com/bid/98379 | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
|
Information
Published : 2017-05-09 14:29
Updated : 2019-10-02 17:03
NVD link : CVE-2017-8856
Mitre link : CVE-2017-8856
JSON object : View
CWE
CWE-732
Incorrect Permission Assignment for Critical Resource
Products Affected
veritas
- netbackup
- netbackup_appliance